Job Specifications
Position: Lead, Security Analyst (IT Risk Management)
Duration: 3m C2H
Location: Hybrid; 1 day onsite at HQ (Dublin CA)
PR: $55.00
Conversion Salary Expectations: $150,000/YR
Day to Day:
Insight Global is looking for a Lead Security Analyst to support a large retail client in Dublin, CA. This senior member will lead and execute third-party security risk management and governance processes, including risk assessments, tracking mitigation efforts, and developing risk metrics and reports. The role involves leading security risk-related projects and enhancing programs such as third-party risk assessments, insider threat management, updating security policies and standards, and executing security awareness programs for both corporate and overseas offices. This role is hybrid and the candidate must be local to the Bay Area, coming onsite to the Dublin office at least 1x/wk.
Must Haves:
5+ years of experience within Information Technology, with at least 3 years in Security and/or Risk Management. Bachelor's degree preferred or equivalent combination of education and relevant experience.
Strong understanding of security governance, compliance, and risk management principles
Excellent analytical, organizational, and communication skills
Strong project management skills
Proficient in Microsoft Word, Excel, PowerPoint
Plusses:
Certifications: CISSP (Certified Information Systems Security Professional), CRISC (Certified in Risk and Information Systems Control)
Working knowledge of UNIX and Windows (client operates in an Azure cloud environment)
Experience with any of the following: Firewalls, VPN, PKI, IPS, Oracle Suite, MS SQL, Virtualization Security
Software programming skills
Key Responsibilities:
Provides subject matter expertise in all aspects of risk management, including performing risk assessments to proactively identify security issues/vulnerabilities and recommend remediation strategies
Leads third-party risk management programs and identifies improvements across the enterprise
Identifies and implements enhancements to the Cybersecurity Risk Management program through process optimization, solutions, policies, procedures, KPIs, and other techniques
Reviews contracts and agreements to ensure necessary security controls are included for the protection of company assets
Develops standards to support vendor selection and RFP processes; participates in product and vendor selection to provide expertise on information security risk and compliance
Maintains risk register and develops Cybersecurity Risk Management metrics and reports; collaborates with Compliance Manager, Secure SDLC Manager, Information Security, and IT groups to gather and analyze metrics
Leads information security awareness programs by regularly conducting exercises to educate employees on information security and best practices
Monitors current and proposed laws, regulations, industry standards, and ethical requirements related to information security and privacy
PR: $50-55.00/HR
Conversion Salary Expectations: $140,000-150,000/YR
About the Company
Insight Global is an international professional services and staffing company specializing in delivering talent and technical solutions to Fortune 1000 companies across the IT, Non-IT, Healthcare, and Engineering industries. Fueled by staffing and talent experts, Evergreen, our professional services brand, brings technical advisors and culture consultants to help customers tackle their biggest challenges. With over 70 locations across North America, Europe, and Asia, and global staffing capabilities in 50+ countries, our tea...
Know more